From 7a04256f756ea066e23c3ac2051599e75ad2d922 Mon Sep 17 00:00:00 2001
From: Phillip Tarrant <ptarrant@gmail.com>
Date: Wed, 3 Sep 2025 13:22:08 -0500
Subject: [PATCH] adding back in rules

---
 app/rules/factory.py | 34 +++++++++++++++++-----------------
 1 file changed, 17 insertions(+), 17 deletions(-)

diff --git a/app/rules/factory.py b/app/rules/factory.py
index d77ccf1..2ce9d2f 100644
--- a/app/rules/factory.py
+++ b/app/rules/factory.py
@@ -43,24 +43,24 @@ def build_rules_engine() -> RuleEngine:
     function=FunctionRuleAdapter(form_action_missing, category="form", adapter=adapter, rule_name="form_action_missing"),
     ))
 
-    # add(Rule(
-    # name="form_http_on_https_page",
-    # description="Form submits via HTTP from HTTPS page",
-    # category="form",
-    # rule_type="function",
-    # function=FunctionRuleAdapter(form_http_on_https_page, category="form", adapter=adapter, rule_name="form_http_on_https_page"),
-    # ))
+    add(Rule(
+    name="form_http_on_https_page",
+    description="Form submits via HTTP from HTTPS page",
+    category="form",
+    rule_type="function",
+    function=FunctionRuleAdapter(form_http_on_https_page, category="form", adapter=adapter, rule_name="form_http_on_https_page"),
+    ))
 
-    # add(Rule("form_http_on_https_page", "Form submits via HTTP from HTTPS page", "form", "function",
-    #          FunctionRuleAdapter(form_http_on_https_page, category="form", adapter=adapter, rule_name="form_http_on_https_page")))
-    # add(Rule("form_submits_to_different_host", "Form submits to a different host", "form", "function",
-    #          FunctionRuleAdapter(form_submits_to_different_host, category="form", adapter=adapter, rule_name="form_submits_to_different_host")))
-    # add(Rule("script_src_uses_data_or_blob", "Script src uses data:/blob: URL", "script", "function",
-    #          FunctionRuleAdapter(script_src_uses_data_or_blob, category="script", adapter=adapter, rule_name="script_src_uses_data_or_blob")))
-    # add(Rule("script_src_has_dangerous_extension", "External script with dangerous extension", "script", "function",
-    #          FunctionRuleAdapter(script_src_has_dangerous_extension, category="script", adapter=adapter, rule_name="script_src_has_dangerous_extension")))
-    # add(Rule("script_third_party_host", "Script is from a third-party host", "script", "function",
-    #          FunctionRuleAdapter(script_third_party_host, category="script", adapter=adapter, rule_name="script_third_party_host")))
+    add(Rule("form_http_on_https_page", "Form submits via HTTP from HTTPS page", "form", "function",
+             FunctionRuleAdapter(form_http_on_https_page, category="form", adapter=adapter, rule_name="form_http_on_https_page")))
+    add(Rule("form_submits_to_different_host", "Form submits to a different host", "form", "function",
+             FunctionRuleAdapter(form_submits_to_different_host, category="form", adapter=adapter, rule_name="form_submits_to_different_host")))
+    add(Rule("script_src_uses_data_or_blob", "Script src uses data:/blob: URL", "script", "function",
+             FunctionRuleAdapter(script_src_uses_data_or_blob, category="script", adapter=adapter, rule_name="script_src_uses_data_or_blob")))
+    add(Rule("script_src_has_dangerous_extension", "External script with dangerous extension", "script", "function",
+             FunctionRuleAdapter(script_src_has_dangerous_extension, category="script", adapter=adapter, rule_name="script_src_has_dangerous_extension")))
+    add(Rule("script_third_party_host", "Script is from a third-party host", "script", "function",
+             FunctionRuleAdapter(script_third_party_host, category="script", adapter=adapter, rule_name="script_third_party_host")))
 
     log.info("Registered %d total rules (YAML + function)", len(eng.rules))
     return eng